30 research outputs found

    Secure bootstrapping and routing in an IPv6-based ad hoc network

    Get PDF
    The mobile ad hoc network (MANET), which is characterized by an infrastructureless architecture and multi-hop communication, has attracted a lot of attention recently. In the evolution of IP networks to version 6, adopting the same protocol would guarantee the success and portability of MANETs. In this paper, we propose a secure bootstrapping and routing protocol for MANETs. Mobile hosts can autoconfigure and even change their IP addresses based on the concept of CGA (cryptographically generated address), but they can not hide their identities easily. The protocol is modified from DSR (dynamic source routing) to support secure routing. The neighbor discovery and domain name registration in IPv6 are incorporated and enhanced with security functions. The protocol is characterized by the following features: (i) it is designed based on IPv6, (ii) relying on a DNS server, it allows bootstrapping a MANET with little pre-configuration overhead, so network formation is light-weight, and (iii) it is able to resist a variety of security attacks

    Mobility Helps Peer-to-Peer Security

    Get PDF
    We propose a straightforward technique to provide peer-to-peer security in mobile networks. We show that far from being a hurdle, mobility can be exploited to set up security associations among users. We leverage on the temporary vicinity of users, during which appropriate cryptographic protocols are run. We illustrate the operation of the solution in two scenarios, both in the framework of mobile ad hoc networks. In the first scenario, we consider fully self-organized security: users authenticate each other by visual contact and by the activation of an appropriate secure side channel of their personal device; we show that the process can be fuelled by taking advantage of trusted acquaintances In the second scenario, we assume the presence of an off-line certification authority and we show how mobility helps to solve the security-routing interdependency cycle; in this case, the security protocol runs over one-hop radio links. We then show that the proposed solution is generic: it can be deployed on any mobile network and it can be implemented either with symmetric or with asymmetric cryptography. We provide a detailed performance analysis by studying the behavior of the solution on various mobility models

    ASMA: towards adaptive secured multipath in MANETs

    Get PDF
    As they are used to create open communities, Mobile Ad hoc NETworks (MANETs) are not favourable environments to establish trust, which is necessary to provide security. Multipath routing mechanisms within infrastructureless networks environment seems appropriate and useful to enhance security protection. In fact, the level of trust can be increased so as many of potential security attacks are detected, revealed and stopped. Nevertheless an excessive control overhead is always generated. In this paper, we propose a global framework that integrates a set of concepts and mechanisms aiming at enhancing security in highly dynamic decentralized ad hoc networks. Our solution focuses on authentication, routing securing, trust management with reliable estimation of trust. A large panoply of attacks are prevented using our various mechanisms.8th IFIP/IEEE International conference on Mobile and Wireless CommunicationRed de Universidades con Carreras en Informática (RedUNCI

    ASMA: towards adaptive secured multipath in MANETs

    Get PDF
    As they are used to create open communities, Mobile Ad hoc NETworks (MANETs) are not favourable environments to establish trust, which is necessary to provide security. Multipath routing mechanisms within infrastructureless networks environment seems appropriate and useful to enhance security protection. In fact, the level of trust can be increased so as many of potential security attacks are detected, revealed and stopped. Nevertheless an excessive control overhead is always generated. In this paper, we propose a global framework that integrates a set of concepts and mechanisms aiming at enhancing security in highly dynamic decentralized ad hoc networks. Our solution focuses on authentication, routing securing, trust management with reliable estimation of trust. A large panoply of attacks are prevented using our various mechanisms.8th IFIP/IEEE International conference on Mobile and Wireless CommunicationRed de Universidades con Carreras en Informática (RedUNCI

    An energy efficient intrusion detection system in MANET for secure routing and clustering

    Get PDF
    Security is a primary concerns when protected communication between mobile nodes in a averse environment is the requirement. MANETs are more susceptible to be attacked as compared to the wired networks. These vulnerabilities are due to the operating principles of the MANET which can not be changed. Securing MANET is equally important as securing fixed wired networks. Certain level of security can be obtained form the existing solutions. However, these solutions are not always necessarily suitable for wireless networks. Several intrusion detection techniques that have been developed for fixed wired network cannot be applied in this new environment. Further, energy is also one of the major issues in MANET as the battery life of the network nodes is limited and once discharged these nodes can not be charged again. Energy plays a vital role in determining the reliability of the network as the lifetime of the network highly depends on the energy status of the nodes in the network. Here we have designed a method to incorporate both these factors i.e., security and energy in order to make the network more reliable and secure. We have merged the IDS with the AODV routing protocol such that there is not need to deploy a separate IDS part on each node. Using a separate IDS take considerable amount of processing power of the nodes as well as consumes energy. Thus, by merging the IDS with the routing algorithm itself we are able to decrease the energy consumption at each node which enhances the lifetime of the entire network. Finally we have applied clustering in order to provide stability to out ad hoc network so that the path determination can be made faster and effectiv

    Analysis and Optimization of Cryptographically Generated Addresses

    Get PDF
    The need for nodes to be able to generate their own address and verify those from others, without relying on a global trusted authority, is a well-known problem in networking. One popular technique for solving this problem is to use self-certifying addresses that are widely used and standardized; a prime example is cryptographically generated addresses (CGA). We re-investigate the attack models that can occur in practice and analyze the security of CGA-like schemes. As a result, an alternative protocol to CGA, called CGA++, is presented. This protocol eliminates several attacks applicable to CGA and increases the overall security. In many ways, CGA++ offers a nice alternative to CGA and can be used notably for future developments of the Internet Protocol version 6

    Wireless adhoc Networks Security Principles, Issues

    Get PDF
    Privacy and itegrity of packets on wireless adhoc netwoks should be expected by the algorithmic mechanisms This privacy and integrity is very much is to be mandated by regulations In tardition the security is only based on cryptographic techniques which is not so much secure and leads to unsecure and unauthenticated information As the packets of information is to be routed on networks so it needs some new security and digital signature based algorithm Digital signature methods provides the solution to many of these new concerns So in this paper we will discuss new paradigma of digital signature based techniques along with merit demerits applications and isues related with i

    JXTA security in basic peer operations

    Get PDF
    Open Access Documen

    Secure long term communities in ad hoc networks

    Full text link
    corecore